For BARMER, too, these requirements entail an expansion of its services: a secure authentication process will, in future, allow policyholders to use their digital identity as a form of identification to directly access their electronic patient records and view electronic prescriptions and emergency data on their cell phones. The crux of the matter is that the telematics company (gematik) entrusted with these tasks set very high security standards for the identification and authentication of the policyholders and for the entire duration of data access. To meet these stringent requirements, BARMER commissioned T-Systems and its partner Verimi to provide and manage maximum security digital identities for over 8.7 million policyholders.
The gematik specification of implementing a trusted execution environment (TEE) implies that operators of an identification and authentication solution in the healthcare environment must demonstrate a technical solution that makes accessing all personal medical data impossible. Access is reserved solely for policyholders and persons authorised by them. It is, therefore, necessary to protect data not only during transmission and storage, but also at the time of processing. In addition, the TEE provides for the following:
The highly sensitive social welfare data must also be processed in accordance with the stipulations set out in the German Social Code (SGB). In other words:
The introduction of digital identities allows our policyholders to have easy access to our online services with the highest level of security. We are pleased to have two experienced partners, T-Systems and Verimi, and their invaluable support in offering this user-friendly solution as soon as possible.